$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer File: E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer (raw, json) Hash identifier: OS0ACE+loCtfnafN+Gz4Dt2Je3kHpuNcJR+0ckXzzsI= Subject key identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FC363929CDDBFCC7AE429FBAFE6860F8D03B53E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft caRepository: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 28 Jun 2024 08:17:32 +0000 Certificate not after: Fri 27 Jun 2025 08:22:32 +0000 Subordinate resources: IP: 103.173.140.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c3:63:92:9c:dd:bf:cc:7a:e4:29:fb:af:e6:86:0f:8d:03:b5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 28 08:17:32 2024 GMT Not After : Jun 27 08:22:32 2025 GMT Subject: CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:6c:b5:07:0f:3a:78:8f:13:d4:bf:0c:07: 0e:a7:56:0b:ab:ca:4f:71:73:7a:54:53:2d:30:2b: 21:dc:df:39:f5:d5:bd:8f:b4:8e:7d:68:1c:b1:ef: 7b:c4:f0:55:58:06:7e:96:3a:14:de:21:bc:88:57: ff:83:62:37:15:5a:ed:ea:8b:e3:07:c1:da:ea:1b: 05:7a:13:cd:65:4a:5d:46:78:64:63:93:9e:b8:70: a3:13:f6:3f:38:70:81:75:3e:cf:1a:ea:83:6e:f6: ca:f2:fe:ff:ab:d6:b1:56:d6:75:98:3d:09:12:0b: 49:78:4f:d6:24:ab:ae:5b:75:17:0e:26:24:26:8f: 3b:22:ee:13:6e:61:6a:57:dc:6a:76:36:84:c3:08: e8:45:14:af:b1:5f:33:3c:d7:06:6a:5f:70:8b:f5: 21:f5:84:7a:f5:e0:55:ec:22:92:c8:e7:f1:d1:9d: bb:b7:44:5f:6e:bd:7b:03:58:f8:ce:4d:3b:ea:10: 1b:73:29:bb:bd:0c:b7:26:d0:24:6a:73:b4:0d:8d: e3:87:0d:af:dc:42:a8:2e:07:30:86:9e:47:8a:05: bc:91:96:e9:77:66:69:69:29:f9:b0:26:3b:28:88: 4e:17:e7:82:28:e6:e6:6e:4a:fa:a2:18:48:a1:ce: f0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.140.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:c5:3d:e3:62:b6:1e:cb:7e:50:4c:a0:0b:97:8d:2f:a0:96: 0b:0e:74:37:cc:85:6d:fb:87:94:cc:97:19:c5:52:43:5c:28: f0:fb:db:3b:9b:62:63:e5:7d:f0:38:13:18:fb:bf:f8:ed:6b: 8f:f3:cc:0a:ed:db:09:e1:aa:63:ee:9a:55:a1:12:6a:c9:4c: 65:dc:ee:36:27:5a:41:b3:99:6a:95:64:7e:c1:e1:70:09:24: d1:79:40:21:ac:fb:34:19:38:92:2f:3c:19:f0:da:4a:d3:49: a8:6e:0a:da:2a:37:52:8b:d7:af:1f:cc:63:cd:d3:0f:b6:97: 5c:4a:ca:eb:c8:27:7c:a7:91:9b:0b:7e:02:d2:31:91:0b:bb: f5:23:41:4b:09:2c:a7:c1:9c:ab:a0:80:76:31:69:1f:65:7b: 76:c5:9b:36:d5:35:54:3f:5d:25:51:c6:30:f3:35:4f:6a:8b: 21:ed:1f:28:9e:a6:e1:e8:d0:49:e3:22:df:18:b8:dd:47:2a: 1c:a9:98:69:a2:c2:be:85:09:ac:4e:d7:a0:36:36:78:e9:d5: e2:30:0b:27:59:ee:a1:a5:44:90:6c:b2:a8:9e:c2:be:31:3b: e5:e2:c9:43:5b:66:40:fc:e4:7b:a7:90:f5:db:ec:74:ec:c0: 50:80:36:c1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUX8Njkpzdv8x65Cn7r+aGD40DtT4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyODA4MTczMloX DTI1MDYyNzA4MjIzMlowMzExMC8GA1UEAxMoRTM1REEwN0IxMTRCRDQyOTAxRjdD MURCOEU2ODRFOTk1RTJFNDQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1KbLUHDzp4jxPUvwwHDqdWC6vKT3FzelRTLTArIdzfOfXVvY+0jn1oHLHv e8TwVVgGfpY6FN4hvIhX/4NiNxVa7eqL4wfB2uobBXoTzWVKXUZ4ZGOTnrhwoxP2 PzhwgXU+zxrqg272yvL+/6vWsVbWdZg9CRILSXhP1iSrrlt1Fw4mJCaPOyLuE25h alfcanY2hMMI6EUUr7FfMzzXBmpfcIv1IfWEevXgVewiksjn8dGdu7dEX269ewNY +M5NO+oQG3Mpu70MtybQJGpztA2N44cNr9xCqC4HMIaeR4oFvJGW6XdmaWkp+bAm OyiIThfngijm5m5K+qIYSKHO8FsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdoHsRS9QpAffB245oTpleLkQzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYWFiYjU3OC1iOWRiLTRhNDctOGQ3ZS0xMWE2MzQyODkwMTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYWJiNTc4 LWI5ZGItNGE0Ny04ZDdlLTExYTYzNDI4OTAxOC8wL0UzNURBMDdCMTE0QkQ0Mjkw MUY3QzFEQjhFNjg0RTk5NUUyRTQ0MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrYwwDQYJKoZIhvcNAQELBQADggEBAErFPeNith7LflBMoAuXjS+glgsOdDfM hW37h5TMlxnFUkNcKPD72zubYmPlffA4Exj7v/jta4/zzArt2wnhqmPumlWhEmrJ TGXc7jYnWkGzmWqVZH7B4XAJJNF5QCGs+zQZOJIvPBnw2krTSahuCtoqN1KL168f zGPN0w+2l1xKyuvIJ3ynkZsLfgLSMZELu/UjQUsJLKfBnKuggHYxaR9le3bFmzbV NVQ/XSVRxjDzNU9qiyHtHyiepuHo0EnjIt8YuN1HKhypmGmiwr6FCaxO16A2Nnjp 1eIwCydZ7qGlRJBssqiewr4xO+XiyUNbZkD85HunkPXb7HTswFCANsE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org